Auto login with link
-
Hello,
Al of our pfsense we manage with a single dashboard but we want to create a link for each firewall containing the username and password.
Is there a way to pass the username and password to the firewall within the url to auto login without having to type the password ? -
Buy something like 1Password to auto fill usernames & passwords.
Can't see it happening any other way as it's insecure having usernames & passwords in clear text.
-
I use lastpass.. it has a team sharing feature for passwords, etc. So if you have multiple users..
-
Thank you for the reply's,
We use a password management software for this without a browser plugin.
The best thing will be that the administators do not know the admin/root password.
Is it maybe possible to create a user over ssh for the webgui?Then i can create a script to create and deactivate users.
So when a employee leaves the company we can remove his account on all the firewalls.
The admin/root password will only be known to the owner or high privleged system managers.
We have over 80+ firewalls, thats why we are putting so much effort in central management.
These firewalls are on diffrent locations, with diffrent internet providers. -
So when a employee leaves the company we can remove his account on all the firewalls.
The admin/root password will only be known to the owner or high privleged system managers.
We have over 80+ firewalls, thats why we are putting so much effort in central management.
These firewalls are on diffrent locations, with diffrent internet providers.FreeRadius will do this, get it to use FreeRadius first for the auth then fall back to local usernames & passwords.
Never done it myself with my pfSense access but my local Linksys switches are using the radius server on my router.
This is how I'd do it if I had to.
You'd just need to add the routers to the client list and the users to the user list on the central server.
You can even set auto expire dates for the users.
Don't lock your self out like I did wiith a test VM :)
No page assigned to user, so it is using radius
-
So when a employee leaves the company we can remove his account on all the firewalls.
The admin/root password will only be known to the owner or high privleged system managers.
We have over 80+ firewalls, thats why we are putting so much effort in central management.
These firewalls are on diffrent locations, with diffrent internet providers.FreeRadius will do this, get it to use FreeRadius first for the auth then fall back to local usernames & passwords.
Never done it myself with my pfSense access but my local Linksys switches are using the radius server on my router.
This is how I'd do it if I had to.
You'd just need to add the routers to the client list and the users to the user list on the central server.
You can even set auto expire dates for the users.
Don't lock your self out like I did wiith a test VM :)
No page assigned to user, so it is using radius
Thanks that is a good solution, setting up a radius server right now.
-
Add the following in Additional RADIUS Attributes (REPLY-ITEM) Class := admins